Last updated: 15th January 2026
BrightVertex Ltd ("we", "our", or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website brightvertex.top or use our services. We are the data controller for the purposes of the General Data Protection Regulation (GDPR) and other applicable data protection laws.
BrightVertex Ltd is a company registered in Ireland with registration number CRO358164. Our registered address is 134 Dawson Street, Galway H24 4163, Ireland. For any privacy-related enquiries, you can contact us at privacy@brightvertex.top or by phone at +353 91 946 7112.
We collect various types of personal data to provide and improve our services. The data we collect includes:
We use your personal data for various purposes based on legitimate interests, contractual obligations, and your consent. How we use your information includes:
Under GDPR, we process your personal data based on the following legal grounds: (a) Consent - where you have given clear consent for us to process your data for specific purposes; (b) Contract - where processing is necessary for the performance of a contract with you; (c) Legal Obligation - where we need to comply with legal requirements; and (d) Legitimate Interests - where processing is necessary for our legitimate business interests, provided these do not override your fundamental rights and freedoms.
We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner. For detailed information about our use of cookies, please refer to our Cookie Policy.
We do not sell, trade, or rent your personal data to third parties. We may share your information only in the following circumstances: with trusted service providers who assist us in operating our website and conducting our business (subject to confidentiality agreements); when required by law or to protect our rights, property, or safety; with your explicit consent; or in connection with a business transfer or acquisition (with appropriate safeguards in place).
We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected and to comply with legal obligations. Typically, we retain client data for seven years after the end of our business relationship, communication records for three years, and website analytics data for 26 months. We regularly review our data retention practices and securely delete data when it is no longer needed.
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encryption of data in transit and at rest, regular security assessments, access controls and authentication procedures, secure data storage systems, and staff training on data protection principles.
As we operate primarily within the European Economic Area (EEA), your data is generally processed within this region. If we transfer data outside the EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions by the European Commission, to protect your data in accordance with GDPR requirements.
Under GDPR and other applicable data protection laws, you have several rights regarding your personal data:
To exercise any of these rights, please contact us at privacy@brightvertex.top. We will respond to your request within one month, though this may be extended in complex cases.
If you have any questions about this Privacy Policy or our data practices, please contact us using the following details: Email: privacy@brightvertex.top, Phone: +353 91 946 7112, or Post: BrightVertex Ltd, 134 Dawson Street, Galway H24 4163, Ireland. You also have the right to lodge a complaint with the Data Protection Commission of Ireland if you believe your data protection rights have been violated.
Our services are not directed to individuals under the age of 18. We do not knowingly collect personal data from children under 18. If we become aware that we have collected personal data from a child under 18, we will take steps to delete such information promptly.
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website with a new "last updated" date. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your data.
This Privacy Policy is governed by Irish law and the General Data Protection Regulation (GDPR). Any disputes arising from this policy or our data processing activities will be subject to the jurisdiction of the Irish courts.